Validation of OFX TLS Certificates?
Jeff Kletsky
gnucash at allycomm.com
Mon Jan 15 22:33:42 EST 2018
I haven't been able to find much on getting past AqBanking not verifying
certificates for OFX connections.
https://wiki.gnucash.org/wiki/De/Setting_up_OFXDirectConnect_in_GnuCash_2
says to "blindly" accept them, which seems risky in this day and age. I
found a question around it asked on the list, but unanswered on
2016-11-23, "OFX connection certificate troubles"
http://www.linuxsecurity.com/content/view/188984/102/ suggests that
gwenhywfar was patched to "use system ca-certificates" in 2015.
Before I dig further into this, is there a way to have the certificates
properly validated and, ideally, the revocation list checked? MacOS X
here, but a "generic" solution as a framework would also help!
Thanks,
Jeff
More information about the gnucash-user
mailing list